CVE-2026-9701 - Eventer <= 4.4.2 - Insecure Password Reset Mechanism to Unauthenticated Privilege Escalation
CVE ID :CVE-2026-9701 Published : July 8, 2026, 5:16 a.m. | 1 hour, 58 minutes ago Description :The Eventer plugin for WordPress is vulnerable to an insecure password reset mechanism in all versions up to, and including, 4.4.2. The plugin stores a plaintext copy of the password reset key in...